Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/QxbRhp84JUsFP_kqB5I6-czH5Gs.roa
File: QxbRhp84JUsFP_kqB5I6-czH5Gs.roa (raw, json)
Hash identifier: gib5IJDzx/9RfRVEe5AruC12cz21VBivP0wAgZwp58g=
Subject key identifier: 43:16:D1:86:9F:38:25:4B:05:3F:F9:2A:07:92:3A:F9:CC:C7:E4:6B
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095372AEFED16B040857CA3839A8977
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/QxbRhp84JUsFP_kqB5I6-czH5Gs.roa
Signing time: Mon 02 Jan 2023 03:45:05 +0000
ROA not before: Mon 02 Jan 2023 03:45:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48172
IP address blocks: 146.120.226.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:37:2a:ef:ed:16:b0:40:85:7c:a3:83:9a:89:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4316d1869f38254b053ff92a07923af9ccc7e46b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:dc:8f:3e:67:ee:69:b8:f8:67:a1:e0:ca:ac:
fb:dc:47:94:14:47:fe:13:d9:03:98:ca:8a:50:74:
0d:88:f0:e3:77:45:0d:07:09:a1:ff:4f:7d:9b:ad:
29:0b:85:5e:5d:13:a9:b5:6e:26:55:68:cb:10:b1:
7d:91:f3:b4:f7:f1:6f:7c:f8:82:2a:a5:55:fe:42:
74:21:0f:c7:07:ac:a8:b3:56:f3:ea:30:ac:04:c9:
83:6b:18:56:9b:db:55:33:49:45:4c:f7:4c:6c:f4:
7e:4f:11:14:8c:ac:80:60:16:58:4f:ae:62:14:94:
07:ec:28:06:0c:30:72:ea:f3:52:c7:86:e7:c3:a5:
85:39:8f:ad:56:8a:b0:5b:7b:9b:5a:23:30:0a:d5:
4c:e6:a0:5f:95:08:e7:49:a8:5f:d8:d1:7f:2a:33:
01:75:74:c9:df:f1:d1:83:c5:f9:42:97:74:f8:78:
df:e8:7b:7d:43:5d:02:ae:03:42:0e:e7:93:ae:03:
27:98:84:43:77:1c:fb:9a:00:13:9b:22:48:fc:2c:
01:0e:90:54:c5:97:fd:e2:fc:b3:7d:d6:95:d7:1c:
44:ee:3d:db:7d:22:c8:55:d9:8f:1a:e8:ea:19:f7:
06:d8:cc:f8:33:99:8d:a7:61:b7:32:dd:bb:fe:34:
aa:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:16:D1:86:9F:38:25:4B:05:3F:F9:2A:07:92:3A:F9:CC:C7:E4:6B
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/QxbRhp84JUsFP_kqB5I6-czH5Gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.120.226.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:8e:36:12:10:1d:5d:ad:e4:18:8d:59:a4:27:f1:f4:3e:f9:
bb:1a:a2:2a:06:39:fc:ca:86:9c:60:1a:2f:98:f6:7b:7f:75:
40:49:ca:26:43:b0:f3:3c:98:4e:7f:56:09:a3:24:f8:46:01:
41:a0:7e:89:44:9c:6c:15:bf:10:4e:47:ec:cc:01:6c:53:fd:
ef:74:82:8f:0c:33:99:4b:5d:de:5c:c1:18:93:37:f5:00:bd:
2a:16:6d:69:0c:0f:13:f1:44:82:7d:54:84:03:0b:91:f8:d1:
e7:b5:26:d1:4e:ee:85:a1:a8:72:6f:0b:4b:99:0a:f3:11:e0:
fd:13:95:03:f5:c4:dc:ae:b4:b3:37:e6:4a:2e:a8:a8:be:fa:
43:df:7c:7d:ad:28:53:81:7f:33:c5:07:69:2e:5c:b0:c8:8e:
bf:9c:a1:38:30:2b:24:e9:ff:12:00:cc:98:05:72:cd:23:af:
62:67:15:62:4b:45:9c:a2:34:b3:f6:97:df:b7:7c:81:60:5e:
ee:4a:2c:94:af:54:6d:6c:d6:3d:36:8c:b8:78:54:0f:0e:7c:
f0:da:bf:72:7b:ee:8f:5a:a9:65:d2:6f:0e:71:37:2e:8c:62:
43:f7:28:ac:97:59:5b:8b:2b:33:22:27:47:06:56:d0:76:ee:
23:0a:b9:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:00 2024 by rpki-client on console-ams.rpki-client.org